CVE-2011-4088Sensitive Information Exposure in Abrt

CWE-200Sensitive Information Exposure5 documents5 sources
Severity
7.5HIGHNVD
EPSS
0.7%
top 26.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
AbrtAbrt Project AbrtFedoraproject Fedora+3 more
Timeline
PublishedJan 31
Latest updateApr 22

Description

ABRT might allow attackers to obtain sensitive information from crash reports.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages5 packages

CVEListV5abrt/abrt2.0.8

Also affects: Fedora 16

🔴Vulnerability Details

2
GHSA
GHSA-pvpf-wrvr-qvg2: ABRT might allow attackers to obtain sensitive information from crash reports2022-04-22
CVEList
CVE-2011-4088: ABRT might allow attackers to obtain sensitive information from crash reports2020-01-31

📋Vendor Advisories

1
Red Hat
abrt: may leak some personal information to bugzilla with some certain applications2011-11-18

💬Community

1
Bugzilla
CVE-2011-4088 abrt: may leak some personal information to bugzilla with some certain applications2011-10-28
CVE-2011-4088 — Sensitive Information Exposure in Abrt | cvebase